Delivery-Date: Fri, 03 Oct 2014 09:13:23 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.9 required=5.0 tests=BAYES_00,RCVD_IN_DNSWL_MED,
	RP_MATCHES_RCVD autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id CC8B01E0A06;
	Fri,  3 Oct 2014 09:13:21 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id D8AAB2AB1B;
	Fri,  3 Oct 2014 13:13:17 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 90582287DA
 for <tor-talk@lists.torproject.org>; Fri,  3 Oct 2014 13:13:13 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at eugeni.torproject.org
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id 6Xzhl1wnvetB for <tor-talk@lists.torproject.org>;
 Fri,  3 Oct 2014 13:13:13 +0000 (UTC)
Received: from mail-wi0-f169.google.com (mail-wi0-f169.google.com
 [209.85.212.169])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (not verified))
 by eugeni.torproject.org (Postfix) with ESMTPS id 48585286AE
 for <tor-talk@lists.torproject.org>; Fri,  3 Oct 2014 13:13:13 +0000 (UTC)
Received: by mail-wi0-f169.google.com with SMTP id cc10so1382913wib.2
 for <tor-talk@lists.torproject.org>; Fri, 03 Oct 2014 06:13:10 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20130820;
 h=x-gm-message-state:message-id:date:from:reply-to:user-agent
 :mime-version:to:subject:references:in-reply-to:content-type
 :content-transfer-encoding;
 bh=Axc/p/lHNaUzSs9gDQbwxXFGyFgtKIcoAx7rJmy9AgI=;
 b=jBBJ5Y+PNPGML47NuPQb5tcVJ7QyUG/DvHC7MYGJi/+tnrknnjJoGRLSVlfmoJJbZ2
 iLaRJKuOYRX/PtfhIBj/XaEwGOjiAAsUA7minzyRBfkZbjJ3N4RTqlFec/RmGrRRU5kZ
 n76qLFm19pfNUjgcLKGSWF2emvESOnbIdv/XZ/+d9g7HaBQWF47a1eAXpBs8H19zBZaz
 ncnLTu/2WY/tW5V7VvuIs2lUmxYE7sKTUcOCw2vXF0s+duV/I8MTZpAdfRiwFvs2x5pO
 CvtGZtE3OagG02o0JwTf2R3btlf2x65NELsqb0gmtRPbO5E2V8VDLtGh9p7OtSjXJnb9
 xLtw==
X-Gm-Message-State: ALoCoQk+xRZhCftIK7HLFe7wT76ayqtF55Jh/wCtI/tjgGOeOp15tVKx4spc2u2iitS8ZkynxlsvED9r+YwBmorIc4LoLg1K6ysmg3iQmFwLiVA+2PQic+ikIVzf14KJA2wYnEEq7nm5aSjtQbKudmFYxTYUsalH6aZ9u4ejt45dM4fVXMkMO/Kr4n5iMMtm8p4zYsZMxgVp
X-Received: by 10.181.27.132 with SMTP id jg4mr12623171wid.82.1412341990252;
 Fri, 03 Oct 2014 06:13:10 -0700 (PDT)
Received: from [192.168.1.129] (184.236.79.188.dynamic.jazztel.es.
 [188.79.236.184])
 by mx.google.com with ESMTPSA id q2sm2053098wiy.23.2014.10.03.06.13.09
 for <tor-talk@lists.torproject.org>
 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128);
 Fri, 03 Oct 2014 06:13:09 -0700 (PDT)
Message-ID: <542EA0E4.1090800@sde12.jazztel.es>
Date: Fri, 03 Oct 2014 15:13:08 +0200
From: =?ISO-8859-1?Q?Llu=EDs?= <msl12@sde12.jazztel.es>
User-Agent: Mozilla/5.0 (X11; Linux x86_64;
 rv:24.0) Gecko/20100101 Icedove/24.8.1
MIME-Version: 1.0
To: tor-talk@lists.torproject.org
References: <542AE168.1010802@sde12.jazztel.es>
 <CAJVRA1TEdxtUiLLQYbMPXKvj2fcT4H7UqYqtMGDr-qd_t8Xp_w@mail.gmail.com>
 <20141001134128.GC19910@loar> <542C3615.7090804@googlemail.com>
 <ca6c6cfba937136db04cfbed2978e661@cryptolab.net>
 <CAJVRA1SiUbet+ry+f89-rmomoWMhMCdoY+Bnmb2f_HzftpNwOQ@mail.gmail.com>
In-Reply-To: <CAJVRA1SiUbet+ry+f89-rmomoWMhMCdoY+Bnmb2f_HzftpNwOQ@mail.gmail.com>
Subject: Re: [tor-talk] Hidden Services - Access control.
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

I think I can afford something else to this thread.

After re-reading the tor man page, I've found the following option:

SocksPolicy policy,policy,...

Being "policy" the same form as exit policies.

Since I can "reject" anyone but me, this will act as a kind of
a firewall for hidden services. Am I right ?

Finally, I think "Lunar" is right, the "HiddenServiceAuthorizeClient"
option might be useful for me. And yes, people might realize
of the existence of the hidden service, but they might not
use it.

Llu=EDs,
Spain

On 10/03/2014 01:25 PM, coderman wrote:
> re: HiddenServiceAuthorizeClient
> =

> this assumes you will never encounter an adversary relay (hsdir)
> intending to enumerate addresses.  a useful feature, but the intent is
> not to hide existence of hidden service addresses.
> =

> best regards,
> =

-- =

tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

